From 1cbce1f8cd0277540ebd09137622a1818857ba1e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 29 Apr 2022 01:29:12 +0000
Subject: [PATCH] Bump async from 2.1.4 to 2.6.4 in /survey-app

Bumps [async](https://github.com/caolan/async) from 2.1.4 to 2.6.4.
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md)
- [Commits](https://github.com/caolan/async/compare/v2.1.4...v2.6.4)

---
updated-dependencies:
- dependency-name: async
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 survey-app/package-lock.json | 8 ++++----
 survey-app/package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/survey-app/package-lock.json b/survey-app/package-lock.json
index e7e484c..895484b 100644
--- a/survey-app/package-lock.json
+++ b/survey-app/package-lock.json
@@ -1447,11 +1447,11 @@
       "integrity": "sha1-WWZ/QfrdTyDMvCu5a41Pf3jsA2c="
     },
     "async": {
-      "version": "2.1.4",
-      "resolved": "https://registry.npmjs.org/async/-/async-2.1.4.tgz",
-      "integrity": "sha1-LSFgx3iAMuTdbL4lAvH5osj2zeQ=",
+      "version": "2.6.4",
+      "resolved": "https://registry.npmjs.org/async/-/async-2.6.4.tgz",
+      "integrity": "sha512-mzo5dfJYwAn29PeiJ0zvwTo04zj8HDJj0Mn8TD7sno7q12prdbnasKJHhkm2c1LgrhlJ0teaea8860oxi51mGA==",
       "requires": {
-        "lodash": "^4.14.0"
+        "lodash": "^4.17.14"
       }
     },
     "async-each": {
diff --git a/survey-app/package.json b/survey-app/package.json
index 53c9dbb..82105b9 100644
--- a/survey-app/package.json
+++ b/survey-app/package.json
@@ -3,7 +3,7 @@
   "version": "0.0.0",
   "private": true,
   "dependencies": {
-    "async": "2.1.4",
+    "async": "2.6.4",
     "box-node-sdk": "^1.29.0",
     "csv-stringify": "^5.3.0",
     "dotenv": "4.0.0",